The potential breach does not appear to involve online purchases, Krebs reports, noting that the type of data stolen enables thieves to create counterfeit credit cards. If thieves were able to intercept pin numbers, they would also allow thieves to withdraw cash from ATMs.